Potential fix for pull request finding 'CodeQL / Code injection'

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Author: coisa

.github/workflows/label-sync.yml

@@ -23,10 +23,10 @@ jobs:
     steps:
       - name: Extract issue number from PR
         id: extract-issue
+        env:
+          BODY: ${{ github.event.pull_request.body }}
+          TITLE: ${{ github.event.pull_request.title }}
         run: |
-          BODY='${{ github.event.pull_request.body }}'
-          TITLE='${{ github.event.pull_request.title }}'
-
           ISSUE=$(echo "$BODY $TITLE" | \
             grep -oE '(closes|fixes|resolves|addresses)\s+#[[:digit:]]+' | \
             grep -oE '#[[:digit:]]+' | head -1 | tr -d '#')